CN101753400B - Inter-network communication system and method thereof - Google Patents
Inter-network communication system and method thereof Download PDFInfo
- Publication number
- CN101753400B CN101753400B CN2008101882475A CN200810188247A CN101753400B CN 101753400 B CN101753400 B CN 101753400B CN 2008101882475 A CN2008101882475 A CN 2008101882475A CN 200810188247 A CN200810188247 A CN 200810188247A CN 101753400 B CN101753400 B CN 101753400B
- Authority
- CN
- China
- Prior art keywords
- communication interface
- service end
- network
- territory
- online
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses an inter-network communication system and a method thereof, which are used for processing the far-end control of a public net domain for a device in a private net domain. A service side with the congruent relationship of a client side and an action side is set in the public net domain and is used for actively transmitting a package in the public net domain to the device in the private net domain according to a mapping table of the service side for the far-end control, thereby achieving the technical effect that the management convenience of the device in the private net domain can be improved.
Description
Technical field
The present invention relates to a kind of inter-network communication system and method thereof.
Background technology
In recent years, flourish along with world-wide web, need to use the network equipment of the network address (IP address) also to be the geometric progression growth, but because the network address has uniqueness and the present widely used network address is the 4th generation addressing protocol (IPv4), this addressing protocol only uses the length of 32 bits to come the all-network device in the addressing whole world, therefore causes the not enough situation in the network address to produce easily.
In view of this, (Network Address Translation, technology NAT) is so that make full use of the limited network address just to have manufacturer to propose network address translation.Generally speaking, the network address is divided into public network address (Public IP address) and private network address (Private IP address), so-called public network address is (the Internet Service Providers of Internet service provider, the legitimate network address of ISP) being provided, that is the actual network address in the world-wide web (being the public network territory); Private network address then is to keep the network address (also being referred to as virtual network address) that will not provide, the network address of this reservation is to be used for using as internal network (being privately owned net territory), and can plan voluntarily and provide for network manager according to different situations, for instance, the 4th generation the network address range that kept of addressing protocol standard be respectively 10.0.0.1 to 10.255.255.254,172.16.0.1 to 172.31.255.254 and 192.168.0.1 to 192.168.255.254.Identical private network address can be used in the different privately owned net territories, so can effectively solve the problem of network address deficiency.Yet, owing to may possess identical private network address in the different privately owned nets territory, therefore, repeat and the situation of generation addressing entanglement for fear of the network address, the bag in privately owned net territory and public network territory can't directly transmit mutually, if will transmit then must be by being positioned within public network territory and the privately owned net territory simultaneously and the intermediary of network enabled address translation end, as the IP Wireless Router, be used to carry out the packet transfer in inter-network territory.
Yet, the mode of above-mentioned network address translation must initiatively be sent online request to second device in the public network territory by the device of first in the privately owned net territory, so that the corresponding relation with first device and second network address of installing in the process of online request is recorded in the foundation of the correspondence table of intermediary's end as packet transfer, therefore, when first device does not send under the situation of online request second device, the problem that can't initiatively carry out far-end control by the device of second in the public network territory to first device in privately owned net territory will be produced.
In sum, there has been the problem that can't initiatively be carried out far-end control by the device of second in the public network territory to first device in privately owned net territory in current techniques always since the midium or long term as can be known, therefore is necessary to propose improved technological means, solves this problem.
Summary of the invention
Technical problem to be solved by this invention provides a kind of inter-network communication system and method thereof, has solved the problem that can't initiatively be carried out far-end control by the device of second in the public network territory to first device in privately owned net territory.
In order to address the above problem, the invention provides a kind of inter-network communication system, be applied to have in the network environment in a public network territory and a privately owned net territory, comprise: a client, be positioned at described public network territory, be used to transmit a control information; The delegation moved end is positioned at described privately owned net territory, and this action end comprises: a preposition module is used to transmit an online request; And a control module, be used to receive described control information, and carry out this control information to return at least one data message; One network service end, be positioned at described public network territory, be used for being connected with this public network territory and described privately owned net territory simultaneously, and have the corresponding relation that a conversion table writes down the NID of this network service end and described action end, and carry out packet transfer according to this conversion table and handle; An and service end, be positioned at described public network territory, difference initialization one first communication interface and one second communication interface when starting, this service end comprises: a storage module, be used to store a correspondence table, wherein this correspondence table comprises the corresponding relation of a client's communication interface and a conversion communication interface at least; One receiver module, be used for receiving the described control information that described client transmits by described first communication interface, and receive described online request and the described data message that described action end is transmitted by described second communication interface in described public network territory; One on-line module, be used for setting up online between described service end and described action end according to described online request, and after online foundation, described conversion communication interface is recorded in described correspondence table, and set up online between this service end and described client according to described control information, and after online foundation, described client's communication interface is recorded in this correspondence table; And a transfer module, be used for described control information being transferred to described action end by described second communication interface, and described data message is passed on described client by described first communication interface according to described correspondence table; Wherein, online between described service end and described action end is to pass on by described network service end.
The present invention also provides a kind of inter-network territory means of communication, be applied to have a client, in the network environment in delegation moved end, a network service end, a service end, a public network territory and a privately owned net territory, its step comprises: set up a correspondence table in the described service end that is positioned at this public network territory, wherein this correspondence table comprises the corresponding relation of a client's communication interface and a conversion communication interface at least; Set up a conversion table in the described network service end that is positioned at described public network territory and be connected with this public network territory and described privately owned net territory simultaneously, wherein this conversion table writes down the corresponding relation of the NID of this network service end and described action end, and carries out packet transfer according to this conversion table and handle; Difference initialization one first communication interface and one second communication interface when described service end starts; Described action end is positioned at described privately owned net territory, and the online request that transmits is to described service end; Described service end receives described online request that described action end transmitted setting up online between this service end and this action end by described second communication interface, and after online foundation, described conversion communication interface is recorded in described correspondence table; Described client transmits a control information to described service end in described public network territory; Described service end receives the described control information that described client transmits by described first communication interface in described public network territory; Described service end is set up online between this service end and described client according to described control information, and after online foundation, described client's communication interface is recorded in described correspondence table, and this control information is transferred to described action end by described second communication interface according to this correspondence table; Described action termination is received described control information, and carries out this control information to return at least one data message to described service end; And described service end transfers to described client with described data message by described first communication interface according to described correspondence table; Wherein, online between described service end and described action end is to pass on by described network service end.
Compared with prior art, the present invention is by being provided with the service end of the corresponding relation with client and action end in the public network territory, the device that is used for according to the correspondence table of service end the bag in public network territory initiatively being transferred to privately owned net territory to be to carry out far-end control, uses the present invention and can reach the technology effect of raising to the administrative convenience that installs in the privately owned net territory.
Description of drawings
Fig. 1 is the block diagram of inter-network communication system of the present invention;
Fig. 2 is the flow chart of the inter-network of the present invention territory means of communication;
Fig. 3 is for using the operation interface schematic diagram that client of the present invention is used to select the action end of desire control;
Fig. 4 is for using the schematic diagram of control action end of the present invention;
Fig. 5 is for using the schematic diagram that the present invention sets correspondence table.
Embodiment
The invention will be further described below in conjunction with the drawings and specific embodiments.
Before the present invention disclosed inter-network communication system and method thereof are described, earlier framework of the present invention is made description below, system of the present invention comprises client, action end, network service end and service end, described client is for (for example: equipment promptly so-called world-wide web) to be arranged in the public network territory, as: personal computer, its public network territory are meant the network environment of wrapping transmission with public network address (Public IP address); The action end is for being positioned at (the Internet Service Providers of Internet service provider, ISP) privately owned net territory (for example: the equipment promptly so-called internal network), as: running gear, its privately owned net territory are meant the network environment of wrapping transmission with private network address (Private IP address); Network service end is then for being arranged in the server in public network territory and privately owned net territory simultaneously, the network equipment of the Internet service provider that described network service end is just above-mentioned, as: router, network address translation services is provided, be used for according to conversion table the packet transfer of internal network to world-wide web, and with the packet transfer in the world-wide web to internal network, for instance, suppose that the network address of client in the public network territory is " 168.95.1.2 ", the network address of action end in privately owned net territory is " 192.168.1.2 ", because the bag of the network address " 192.168.1.2 " can't directly be sent to the public network territory, therefore need carry out the processing of network address translation by network service end, the source network address " 192.168.1.2 " that comes that also is about in the bag is replaced into the network address " 168.95.1.2 " on behalf of after transmitting, to return again packet transfer to the network address action end of " 192.168.1.2 ", because the packet transfer technology of network service end is a known technology, so seldom give unnecessary details at this; Service end then writes down the corresponding relation of client's communication interface and conversion communication interface, the source communication interface that described client's communication interface is a client (Source Port), and the conversion communication interface is the numbering of the source communication interface of the action end changed by network service end, and this service end will elaborate after a while again.In addition, described public network territory and privately owned net territory then can be the wired or wireless network architecture.
Below cooperation is graphic is further described inter-network communication system of the present invention and method thereof, see also " Fig. 1 ", " Fig. 1 " is the block diagram of inter-network communication system of the present invention, comprises: client 110, action end 120, network service end 130, world-wide web 131, internal network 132 and service end 140.Wherein, client 110 (for example: world-wide web 131) is positioned at the public network territory, be used for communicating control information, on reality is implemented, control information need be handled through encapsulation (capsulate) and generate a plurality of bags so that transmit in the public network territory, because the encapsulation process of bag and corresponding decapsulation (decapsulate) thereof are treated to known technology, so this no longer giving unnecessary details more.
The be expert at part of moved end 120, its action end 120 (for example: internal network 132), and comprise: preposition module 121 and control module 122 is positioned at privately owned net territory.Wherein, preposition module 121 is used to transmit online request, and on reality was implemented, its online request can be online request (SYN) packets of information that is transmitted in three-dimensional handshaking (Three-Way Handshake) process of TCP/IP.
And network service end 130 is positioned at public network territory (just so-called world-wide web 131), be used for being connected with public network territory and privately owned net territory (just so-called internal network 132) simultaneously, and has conversion table, this conversion table is used to write down the corresponding relation of the NID of network service end 130 and action end 120, and carry out packet transfer according to conversion table and handle, described NID is the numbering (Socket port number) of the network address (IP address) and communication interface.
Part in service end 140, this service end 140 is positioned at the public network territory, difference initialization first communication interface and second communication interface when starting, its first communication interface and second communication interface are numberings different in the transmission control protocol, and its service end 140 then comprises: storage module 141, receiver module 142, on-line module 143 and delivery module 144.Wherein, storage module 141 is used to store correspondence table, described correspondence table comprises the corresponding relation of record client's communication interface and conversion communication interface at least, for instance, the source communication interface of supposing client 110 is " 1234 ", the source communication interface of action end 120 is converted to " 2761 " for " 3148 " this source communication interface " 3148 " by network service end 130, this is the conversion communication interface, described correspondence table comprises the corresponding relation of these two communication interfaces of record (being client's communication interface and conversion communication interface) at least, so that service end 140 receives from client's communication interface to behind the bag of " 1234 ", can pass on according to this correspondence table and wrap conversion communication interface " 2761 " to network service end 130, and the packet transfer that will change communication interface " 2761 " with reference to correspondence table by network service end 130 to the source communication interface " 3148 " of action end 120 to finish passing on of bag.In addition, correspondence table more can comprise the corresponding relation that writes down the network address.Be noted that especially, above-mentioned process of passing on bag only describes at communication interface, actual pass on the bag process in, except according to the communication interface, the processing of bag is passed on to finish in the network address that also needs to arrange in pairs or groups, yet, its network address be converted to known technology, so seldom give unnecessary details at this.
After receiver module 142 is finished the initialization of first communication interface and second communication interface in service end 140, be used for receiving by first communication interface control information of client 110 in the public network territory, and by online request and the data message of second communication interface reception from action end 120, on reality is implemented, receiver module 142 is by the first default communication interface, be numbered " 80 " as: communication interface (Socket port) are used to receive the control information that client 110 is transmitted; And by the second default communication interface, be numbered " 81 " as: communication interface are used for online request and data message that receiving activity end 120 is transmitted.Be noted that especially 120 online requests that transmitted of action end and data message all must pass on by network service end 130, in other words, it is to pass on by network service end 130 that online between 120 held in service end 140 and action.
On-line module 143 is used for setting up online between service end 140 and the action end 120 according to online request, and after online foundation, to change communication interface and be recorded in correspondence table, and set up the online of 110 of service end 140 and clients according to control information, and after online foundation, client's communication interface is recorded among the correspondence table.For instance, when on-line module 143 receives the online request that action end 120 transmitted, because this online request is passed on by network service end 130, therefore, service end 140 can learn that the network address of network service end 130, the numbering of communication interface (promptly changing communication interface) and relevant online parameter are (for example: network protocol type), and set up service end 140 and action by network service end 130 and hold online between 120 according to this online request.Similarly, when on-line module 143 receives the control information that client 110 transmitted, service end 140 can learn that the network address of client 110, the numbering of communication interface (being client's communication interface) and relevant online parameter are (for example: network protocol type), and set up online between service end 140 and the client 110 with this according to this control information.Described relevant online parameter can comprise the network transmission protocols such as TCP, UDP.......In addition, on-line module 143 is learnt the conversion communication interface of the source communication interface of representative action end 120 according to the bag of online request, and learn client's communication interface of client 110 according to control information after, will write down above-mentioned conversion communication interface and client's communication interface in the correspondence table of service end 140.
In addition, service end 140 more can comprise credentials module 145, be used for respectively to action end 120 or client 110 configuration digital certificates, on reality is implemented, credentials module 145 can pass through secure data transmission layer (Secure Socket Layer, SSL) the collocation digital certificate carries out the coding/decoding processing to this control information, this online request and those data messages, in other words, in the process of bag transmission, will use encrypted transmission but not the plain code that the uses transmission of general institute is eavesdropped to avoid wrapping, and then significantly safety of transmission is wrapped in raising.In addition, credentials module 145 also can be used for carrying out the management and the granting of digital certificate, because management, granting and the correlation technique thereof of digital certificate are known technology, so seldom give unnecessary details at this.
Shown in " Fig. 2 ", " Fig. 2 " is the flow chart of the inter-network of the present invention territory means of communication, be applied to have client 110, in the network environment of action end 120, network service end 130, service end 140, public network territory (being world-wide web 131) and privately owned net territory (being internal network 132), comprise the following step: set up correspondence table in the service end 140 that is positioned at the public network territory, wherein this correspondence table comprises the corresponding relation (step 201) of record client's communication interface and conversion communication interface at least; Set up conversion table at the network service end 130 that is positioned at the public network territory and be connected with public network territory and privately owned net territory simultaneously, wherein conversion table writes down the corresponding relation of the NID of network service end 130 and action end 120, and carries out packet transfer according to conversion table and handle (step 202); Difference initialization first communication interface and second communication interface (step 203) when service end 140 starts; Action end 120 is positioned at privately owned net territory, and transmits online the request to service end 140 (step 204); The online request that service end 140 is transmitted by the second communication interface receiving activity end to be setting up the online of 120 at service end 140 and action end, and after online foundation, will change communication interface and be recorded in correspondence table (step 205); Client 110 in the public network territory communicating control information to service end 140 (step 206); Service end 140 receives the control information (step 207) that client transmitted by first communication interface in the public network territory; Service end 140 is set up the online of 110 of service end 140 and clients according to control information, and after online foundation, client's communication interface is recorded in correspondence table, and control information is transferred to action end 120 (steps 208) by second communication interface according to correspondence table; Action end 120 receiving control informations, and carry out control information to return data message to service end 140 (step 209); Service end 140 transfers to client 110 (step 210) with data message by first communication interface according to correspondence table, and wherein, the online of 120 at service end 140 and action end is to pass on by network service end 130.Pass through above steps, can be by the service end 140 of the corresponding relation with client 110 and action end 120 be set in the public network territory, the device that is used for according to the correspondence table of service end 140 bag in public network territory initiatively being transferred to privately owned net territory is used for improving the administrative convenience that privately owned net territory is installed to carry out far-end control.
Below cooperate " Fig. 3 " to " Fig. 5 " to carry out following explanation in the mode of embodiment, please also refer to " Fig. 1 ", wherein " Fig. 3 " comprises for using the operation interface schematic diagram that client 110 of the present invention is used to select the action end 120 of desire control: device is browsed window 300, input block 310, is browsed element 320, web displaying piece 330, selection element 331 and control element 332.Be noted that especially the present invention does not browse component type and the quantity that window 300 is comprised with this device for limiting.
At first, when desire uses the present invention to carry out the communication of inter-network territory, action end 120 needs to transmit online request according to the network address (for example: " 168.95.1.1 ") of the service end 140 that sets in advance in advance, be used to set up the online of 120 at service end 140 and action end, its mode is to transmit online the request to service end 140 by preposition module 121 in privately owned net territory (being internal network 132), and in the process that is sent to service end 140, need to carry out the conversion of the network address and communication interface by network service end 130, and the corresponding relation of the NID (the just so-called network address and communication interface) of network service end 130 and action end 120 is recorded in conversion table, so that make service end 140 and 120 at the action end can be online.At this moment, because service end 140 has just been distinguished initialization first communication interface and second communication interface when starting, and this online request originally the network address (for example: the network address of action end 120 be " 192.168.1.1 ") and communication interface (for example: being numbered of communication interface " 3148 ") also be converted to the network address (for example: " 168.95.1.88 ") of network service end 130 and (for example: being numbered of communication interface " 2761 ") change communication interface by network service end 130, therefore, the receiver module 142 of service end 140 can be in world-wide web 131, by second communication interface (for example: being numbered of communication interface " 81 ") receive the online request that coming from action end 120 and being passed on by network service end 130.
Then, the on-line module 143 of service end 140 is set up the online of 120 at service end 140 and action end according to the online request that is received, and after online foundation, (for example: being numbered of communication interface " 2761 ") be recorded in correspondence table will change communication interface.On reality is implemented,, therefore more can learn the on line state of the action end 120 in internal network 132 (being privately owned net territory) by this correspondence table owing to the action end 120 that online foundation is finished that is all that is write down in the correspondence table.In addition, service end 140 is also in public network territory (being world-wide web 131), and (for example: being numbered of communication interface " 80 ") receive the control information that client 110 is transmitted, described control information will describe after a while by first communication interface.
At this moment, the user can browse window 300 by the device of being illustrated as " Fig. 3 ", the network address (for example: " 168.95.1.1 ") of input service end 140 in its input block 310, and click and browse element 320 and be online to service end 140, then, service end 140 can be according to the record of the conversion communication interface in the correspondence table, learn the on line state of the action end 120 in the internal network 132, for instance, suppose to record in the correspondence table conversion communication interface " 2761 ", its representative has the action end 120 of this conversion communication interface and sets up online with service end 140.At this moment, service end 140 can be sent to client 110 with the on line state of action end 120 and be shown among the web displaying piece 330, on reality is implemented, more can be shown in " Fig. 3 ", show online action end 120 in the mode of selecting element 331, so that allow the user can select to desire the action end 120 of far-end control.Next, when the user by after selecting element 331 and selecting (for example: select " action end two ") to desire the action end 120 of far-end control, can be used for providing further operation by clicking control element 332 again according to user's selection.And on reality is implemented, correspondence table more can write down the network address and the network media access address of action end 120 and be shown in after the comment of selecting element 331, as: show " 192.168.1.1 " (not shown) afterwards at literal " action end one ", so that the user can more effectively distinguish the action end 120 of desire control.
Such as " Fig. 4 " signal, " Fig. 4 " is for using the schematic diagram of control action end of the present invention.After the user clicks control element 332, will be according to selecting being chosen in of element 331 to be written into corresponding webpage in the web displaying piece 330, for instance, can be written into and comprise the webpage that state is obtained element 410, shutdown element 411 and restarted element 412, be used for when the user clicks one of said elements, producing corresponding control information and being sent to service end 140, even the state of selected action end 120 can be shown in (for example: the mode with literal shows " online normal ") in the state displaying block 420.Be noted that especially, except producing corresponding control information transmits by said elements, on reality is implemented, also can key in literal by literal input frame (not shown), and literal is contained in is sent to action end 120 in the control information, so that action end 120 by display unit (for example: the LCD) literal that comprised of demonstration.
When client 110 in public network territory (being world-wide web 131) communicating control information to service end 140, the online of 110 of service end 140 and clients set up in the control information that the on-line module 143 of service end 140 is received according to receiver module 142, and client's communication interface (for example: " 1234 ") of client 110 that will be online is recorded in the correspondence table in the storage module 141, then, transfer module 144 transfers to the action end 120 that is arranged in privately owned net territory (being internal network 132) according to this correspondence table with control information by second communication interface.Then, after the control module 122 of action end 120 receives this control information (for example: obtain the instruction of state), to carry out the control information that is received and return data message (for example: 120 current output/input pin states are held in action), and pass through network service end 130 according to the mode of conversion table with packet transfer, after the data message that is returned transferred to service end 140, transfer to client 110 by service end 140 by first communication interface again and show (not shown), so far, promptly finish the inter-network territory communication of 120 at client 110 and action end.
Shown in " Fig. 5 ", " Fig. 5 " is for using the schematic diagram that the present invention sets correspondence table.The front is mentioned, the correspondence table of service end 140 comprises the corresponding relation of record client's communication interface and conversion communication interface at least, and more can comprise the corresponding relation that writes down the network address so that the user can be more effective the action end 120 of identification conversion communication interface representative.Yet, because the network address of action end 120 is privately owned address, therefore be arranged in the service end 140 of world-wide web 131 and can't be directly learn that by the head (Packet header) of bag action holds 120 the network address, so on reality is implemented, the network address, medium access control address that can in the data field of online request package, deposit action end 120 at least one of them, after service end 140 receives these online requests, can be according to the network address, the medium access control address of this data field record action end 120 ... etc. information.And this correspondence table also can be set by the correspondence table setting piece of setting in the window 500 510, and stores by clicking storage unit 520 after setting is finished.In addition, because the record of correspondence table can change to some extent according to different online situations, therefore also can be written into the current correspondence table of service end 140 by clicking new element 530 more.
In sum, difference between the present invention and the current techniques is by the service end 140 of the corresponding relation with client 110 and action end 120 is set in the public network territory as can be known, be used for the bag in public network territory initiatively being transferred to the device (moved end 120 at once) in privately owned net territory to carry out far-end control according to the correspondence table of service end 140, can carry out the communication of inter-network territory by this technological means, solve the existing problem of current techniques, and then reach the technology effect of raising the administrative convenience that installs in the privately owned net territory.
The above; only for the preferable embodiment of the present invention, but protection scope of the present invention is not limited thereto, and anyly is familiar with the people of this technology in technical scope disclosed in this invention; the variation that can expect easily or replacement all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of claim.
Claims (10)
1. an inter-network communication system is applied to have in the network environment in a public network territory and a privately owned net territory, it is characterized in that, comprises:
One client is positioned at described public network territory, is used to transmit a control information;
The delegation moved end is positioned at described privately owned net territory, and this action end comprises:
One preposition module is used to transmit an online request; And
One control module is used to receive described control information, and carries out this control information to return at least one data message;
One network service end, be positioned at described public network territory, be used for being connected with this public network territory and described privately owned net territory simultaneously, and have the corresponding relation that a conversion table writes down the NID of this network service end and described action end, and carry out packet transfer according to this conversion table and handle; And
One service end is positioned at described public network territory, difference initialization one first communication interface and one second communication interface when starting, and this service end comprises:
One storage module is used to store a correspondence table, and wherein this correspondence table comprises the corresponding relation of a client's communication interface and a conversion communication interface at least;
One receiver module, be used for receiving the described control information that described client transmits by described first communication interface, and receive described online request and the described data message that described action end is transmitted by described second communication interface in described public network territory;
One on-line module, be used for setting up online between described service end and described action end according to described online request, and after online foundation, described conversion communication interface is recorded in described correspondence table, and set up online between this service end and described client according to described control information, and after online foundation, described client's communication interface is recorded in this correspondence table; And
One transfer module is used for according to described correspondence table described control information being transferred to described action end by described second communication interface, and described data message is passed on described client by described first communication interface;
Wherein, online between described service end and described action end is to pass on by described network service end.
2. inter-network communication system as claimed in claim 1 is characterized in that,
Described first communication interface and described second communication interface are the numbering of communication interface different in the transmission control protocol.
3. inter-network communication system as claimed in claim 1 is characterized in that,
The described correspondence table that described storage module stores more comprises the corresponding relation of first communication interface and second communication interface.
4. inter-network communication system as claimed in claim 1 is characterized in that,
Described service end more comprises a credentials module, is used for respectively to described action end or described client configuration one digital certificate.
5. inter-network communication system as claimed in claim 1 is characterized in that,
Described first communication interface and described second communication interface are handled for by the secure data transmission layer described control information, described online request and described data message being carried out encoding and decoding.
6. inter-network territory means of communication are applied to have a client, in the network environment in delegation moved end, a network service end, a service end, a public network territory and a privately owned net territory, and its step comprises:
Set up a correspondence table in the described service end that is positioned at this public network territory, wherein this correspondence table comprises the corresponding relation of a client's communication interface and a conversion communication interface at least;
Set up a conversion table in the described network service end that is positioned at described public network territory and be connected with this public network territory and described privately owned net territory simultaneously, wherein this conversion table writes down the corresponding relation of the NID of this network service end and described action end, and carries out packet transfer according to this conversion table and handle;
Difference initialization one first communication interface and one second communication interface when described service end starts;
Described action end is positioned at described privately owned net territory, and the online request that transmits is to described service end;
Described service end receives described online request that described action end transmitted setting up online between this service end and this action end by described second communication interface, and after online foundation, described conversion communication interface is recorded in described correspondence table;
Described client transmits a control information to described service end in described public network territory;
Described service end receives the described control information that described client transmits by described first communication interface in described public network territory;
Described service end is set up online between this service end and described client according to described control information, and after online foundation, described client's communication interface is recorded in described correspondence table, and this control information is transferred to described action end by described second communication interface according to this correspondence table;
Described action termination is received described control information, and carries out this control information to return at least one data message to described service end; And
Described service end transfers to described client with described data message by described first communication interface according to described correspondence table;
Wherein, online between described service end and described action end is to pass on by described network service end.
7. the inter-network as claimed in claim 6 territory means of communication is characterized in that,
Described first communication interface and described second communication interface are the numbering of communication interface different in the transmission control protocol.
8. the inter-network as claimed in claim 6 territory means of communication is characterized in that,
Described correspondence table more comprises the corresponding relation of first communication interface and second communication interface.
9. the inter-network as claimed in claim 6 territory means of communication is characterized in that,
Described service end more comprises respectively the step to described action end or described client configuration one digital certificate.
10. the inter-network as claimed in claim 6 territory means of communication is characterized in that,
Described first communication interface and described second communication interface are handled for by the secure data transmission layer described control information, described online request and described data message being carried out encoding and decoding.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101882475A CN101753400B (en) | 2008-12-22 | 2008-12-22 | Inter-network communication system and method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101882475A CN101753400B (en) | 2008-12-22 | 2008-12-22 | Inter-network communication system and method thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101753400A CN101753400A (en) | 2010-06-23 |
| CN101753400B true CN101753400B (en) | 2011-12-21 |
Family
ID=42479834
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008101882475A Active CN101753400B (en) | 2008-12-22 | 2008-12-22 | Inter-network communication system and method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101753400B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1571422A (en) * | 2003-07-24 | 2005-01-26 | 铭拓科技股份有限公司 | Communication protocol of point-to-point direct intercommunication between virtual network |
| CN1642140A (en) * | 2004-01-08 | 2005-07-20 | 上海环达计算机科技有限公司 | Packaging repeating system and method for procuration server |
| EP1753180A1 (en) * | 2004-05-20 | 2007-02-14 | Freebit Co., Ltd. | Server for routing connection to client device |
-
2008
- 2008-12-22 CN CN2008101882475A patent/CN101753400B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1571422A (en) * | 2003-07-24 | 2005-01-26 | 铭拓科技股份有限公司 | Communication protocol of point-to-point direct intercommunication between virtual network |
| CN1642140A (en) * | 2004-01-08 | 2005-07-20 | 上海环达计算机科技有限公司 | Packaging repeating system and method for procuration server |
| EP1753180A1 (en) * | 2004-05-20 | 2007-02-14 | Freebit Co., Ltd. | Server for routing connection to client device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101753400A (en) | 2010-06-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11750412B2 (en) | System and method for providing network support services and premises gateway support infrastructure | |
| CN104580192B (en) | The treating method and apparatus of the network access request of application program | |
| JP4944940B2 (en) | Media information sharing system and media information sharing method | |
| CN101361349B (en) | Communication method and method for communication module | |
| CN101542469B (en) | System and method of transmitting/receiving security data | |
| TW200803295A (en) | Discovery of network nodes and routable addresses | |
| WO2008119214A1 (en) | A method for accessing the internal network web service of the internet | |
| CN102624918A (en) | Proxy access method based on URL (Uniform Resource Locator) rewriting technique | |
| CN104539902B (en) | The remote access method and system of a kind of IPC | |
| CN109862130A (en) | A kind of access IPv4 exterior chain method, apparatus, equipment and computer media | |
| KR20120066915A (en) | Method and system of providing remote access for device within home network | |
| US7724752B1 (en) | Communication system across networks and method thereof | |
| JPH11177629A (en) | Security gateway server, www server url concealing method using the server and recording medium recording www server url concealing program | |
| CN101753400B (en) | Inter-network communication system and method thereof | |
| CN103841139A (en) | Data transmission method, device and system | |
| TWI330483B (en) | Cross-domain communication system and method thereof | |
| CN105812499B (en) | Communication means and communication system and virtual client terminal device | |
| CN106572121B (en) | A kind of auditing method and device of VPN data | |
| KR20010077317A (en) | Method & Technology of Dynamic Naming Service | |
| JP5322972B2 (en) | Web screen restoration device, web screen restoration method, and web screen restoration program | |
| JP5084716B2 (en) | VPN connection apparatus, DNS packet control method, and program | |
| JP2006135704A (en) | Router and control method thereof | |
| CN106452896A (en) | Method and system for realizing virtual special network platform | |
| JP2004343522A (en) | Communication profile managing device, communication apparatus, and method for providing communication profile | |
| JP2016058842A (en) | Communication method and communication system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |